Author: Richard Glosner
Supervisor: Jan Vykopal
Abstract: This thesis addresses the selection, design, and implementation of authentication and authorization mechanisms on the backend for the INJECT Exercise Platform, a web-based application for conducting tabletop exercises. The thesis resulted in developing two backend modules, which introduce essential security features, including user authentication, access control, and a user management model with its corresponding API. The implementation is structured to be integrated with the platform’s frontend, enhancing the platform’s overall security and user management capabilities.